CVSS: 2.1EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1085
https://notcve.org/view.php?id=CVE-2004-1085
02 Dec 2004 — Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 7.8EPSS: 3%CPEs: 35EXPL: 0CVE-2004-1086
https://notcve.org/view.php?id=CVE-2004-1086
02 Dec 2004 — Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 9.1EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1087
https://notcve.org/view.php?id=CVE-2004-1087
02 Dec 2004 — Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 7.5EPSS: 1%CPEs: 35EXPL: 0CVE-2004-1088
https://notcve.org/view.php?id=CVE-2004-1088
02 Dec 2004 — Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 5.5EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1089
https://notcve.org/view.php?id=CVE-2004-1089
02 Dec 2004 — Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 35EXPL: 0CVE-2004-0921
https://notcve.org/view.php?id=CVE-2004-0921
28 Oct 2004 — AFP Server on Mac OS X 10.3.x to 10.3.5, when a guest has mounted an AFP volume, allows the guest to "terminate authenticated user mounts" via modified SessionDestroy packets. • http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html •
CVSS: 8.1EPSS: 0%CPEs: 35EXPL: 0CVE-2004-0922
https://notcve.org/view.php?id=CVE-2004-0922
28 Oct 2004 — AFP Server on Mac OS X 10.3.x to 10.3.5, under certain conditions, does not properly set the guest group ID, which causes AFP to change a write-only AFP Drop Box to be read-write when the Drop Box is on a share that is mounted by a guest, which allows attackers to read the Drop Box. • http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html •
CVSS: 9.8EPSS: 0%CPEs: 51EXPL: 0CVE-2004-0924
https://notcve.org/view.php?id=CVE-2004-0924
28 Oct 2004 — NetInfo Manager on Mac OS X 10.3.x through 10.3.5, after an initial root login, reports the root account as being disabled, even when it has not. • http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html •
CVSS: 10.0EPSS: 3%CPEs: 51EXPL: 0CVE-2004-0926
https://notcve.org/view.php?id=CVE-2004-0926
28 Oct 2004 — Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a certain BMP image. • http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html •
CVSS: 9.1EPSS: 0%CPEs: 51EXPL: 0CVE-2004-0927
https://notcve.org/view.php?id=CVE-2004-0927
28 Oct 2004 — ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions. • http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html •